Security
The practices we use to protect accounts, platform data, and infrastructure.
Infrastructure
Litigation Connection is designed to run on managed cloud infrastructure with encrypted transport, environment-scoped configuration, and database access limited to application and operator workflows.
Authentication
Authentication is handled by Clerk, with support for email/password and OAuth providers. Passwords are not stored by Litigation Connection. Session cookies are configured with modern browser security controls.
Payments
When card billing is enabled, payment processing runs through Stripe. We do not store card numbers.
Data isolation
Tenant-aware application routes resolve user access from the authenticated session and database-backed permissions before returning tenant-scoped data.
Reporting vulnerabilities
Please report suspected vulnerabilities to security@litconnect.com. We review security reports and prioritize confirmed risk quickly.